1 4-03 THE ORANGE BOOK Ravi Sandhu. 2 4-03 ORANGE BOOK CLASSES A1Verified Design B3Security Domains B2Structured Protection B1Labeled Security Protection.

Slides:



Advertisements
Similar presentations
INSTITUTE FOR CYBER SECURITY 1 Trusted Computing Models Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for Cyber Security University.
Advertisements

Slide 1 Configuration Management. Slide 2 Goal – Primary Objective To provide a logical model of the IT infrastructure by identifying,controlling, maintaining.
Privacy-Enhancing Models and Mechanisms for Securing Provenance and its Use October 2010 Lead PI: Ravi Sandhu (UT San Antonio) PIs: Elisa Bertino (Purdue),
1 Trust Evidence in Heterogeneous Environments: Towards a Research Agenda Ravi Sandhu Executive Director and Endowed Professor May 2010
1 Trust Evidence in Heterogeneous Environments: Towards a Research Agenda Ravi Sandhu Executive Director and Endowed Professor May 2010
1 The Challenge of Data and Application Security and Privacy (DASPY): Are We Up to It? Ravi Sandhu Executive Director and Endowed Professor February 21,
Title Slide EVOLVING CRITERIA FOR INFORMATION SECURITY PRODUCTS Ravi Sandhu George Mason University Fairfax, Virginia USA.
INSTITUTE FOR CYBER SECURITY 1 The PEI Framework for Application-Centric Security Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for.
Institute for Cyber Security
Title ON FOUR DEFINITIONS OF DATA INTEGRITY Ravi Sandhu George Mason University FIVE.
1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
CONFIDENTIAL 1 Preparing for & Maintaining PCI Compliance.
Trusted Computing in Government Networks May 16, 2007 Richard C. (Dick) Schaeffer, Jr. Information Assurance Director National Security Agency.
CS4026 Formal Models of Computation Running Haskell Programs – power.
Configuration management
EMS Checklist (ISO model)
Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 5.2: Evaluation of Secure Information Systems.
TCSEC: The Orange Book. TCSEC Trusted Computer System Evaluation Criteria.
Inside the Orange Book SYCS 653 Fall 2010 Lecture 12 Notes Wayne Patterson.
November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #18-1 Chapter 18: Evaluating Systems Goals Trusted Computer System Evaluation.
4/28/20151 Computer Security Security Evaluation.
CSE331: Introduction to Networks and Security Lecture 34 Fall 2002.
CS526Topic 22: TCSEC and Common Criteria 1 Information Security CS 526 Topic 22: TCSEC and Common Criteria.
1 The Challenge of Data and Application Security and Privacy (DASPY): Are We Up to It? Ravi Sandhu Executive Director and Endowed Professor February 21,
Secure Operating Systems Lesson 10: SCOMP. Where are we?  Multics is busy being explored, which is kind of cool…  But Multics wasn’t the end of custom.
Trusted Hardware: Can it be Trustworthy? Design Automation Conference 5 June 2007 Karl Levitt National Science Foundation Cynthia E. Irvine Naval Postgraduate.
Secure Operating Systems Lesson 0x11h: Systems Assurance.
1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.
Information Systems Security Security Architecture Domain #5.
Principles of Information System Security: Text and Cases
Computer Science and Engineering Computer System Security CSE 5339/7339 Session 20 October 28, 2004.
ISA 562 Internet Security Theory & Practice
Three fundamental concepts in computer security: Reference Monitors: An access control concept that refers to an abstract machine that mediates all accesses.
Session 2 - Security Models and Architecture. 2 Overview Basic concepts The Models –Bell-LaPadula (BLP) –Biba –Clark-Wilson –Chinese Wall Systems Evaluation.
Security Architecture and Design Chapter 4 Part 3 Pages 357 to 377.
Security Standards and Threat Evaluation. Main Topic of Discussion  Methodologies  Standards  Frameworks  Measuring threats –Threat evaluation –Certification.
Security Administration II Trusted Systems Social Context.
Chapter 7 Securing Commercial Operating Systems. Chapter Overview Retrofitting Security into a Commercial OS History of Retrofitting Commercial OS's Commercial.
Software Production Chapter 2: Identifying Software Development Activities.
Trusted OS Design and Evaluation CS432 - Security in Computing Copyright © 2005, 2010 by Scott Orr and the Trustees of Indiana University.
Domain 6 Security Architecture and Models Domain Objective The objective of this domain is to understand: security models in terms of confidentiality,
ISA 400 Management of Information Security
Lecturer : Assoc. Prof. Dang Tran Khah Presenter: Tran Thach Lam 1.
Trusted Operating Systems
Archictecture for MultiLevel Database Systems Jeevandeep Samanta.
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
Chapter 19: Building Systems with Assurance Dr. Wayne Summers Department of Computer Science Columbus State University
High Assurance Products in IT Security Rayford B. Vaughn, Mississippi State University Presented by: Nithin Premachandran.
Dr. Jeff Teo Class 4 July 2, Deliverables Lecture on Trusted Computing: Evolution and Direction Review of students’ blogs and assignments Summarize.
Chapter 8: Principles of Security Models, Design, and Capabilities
Design and Implementation MAC in Security Operating System CAI Yi, ZHENG Zhi-rong, SHEN Chang-xiang Presented By, Venkateshwarlu Jangili. 1.
Chapter 21: Evaluating Systems Dr. Wayne Summers Department of Computer Science Columbus State University
Csci5233 Computer Security1 Bishop: Chapter 14 Representing Identity.
Security-Enhanced Linux Stephanie Stelling Center for Information Security Department of Computer Science University of Tulsa, Tulsa, OK
CSCE 727 Awareness and Training Secure System Development and Monitoring.
Information Security Principles and Practices by Mark Merkow and Jim Breithaupt Chapter 5: Security Architecture and Models.
1 Security Architecture and Designs  Security Architecture Description and benefits  Definition of Trusted Computing Base (TCB)  System level and Enterprise.
Security Architecture and Design Chapter 4 Part 4 Pages 377 to 416.
TCSEC: The Orange Book.
Official levels of Computer Security
Chapter 19: Building Systems with Assurance
THE ORANGE BOOK Ravi Sandhu
Guest Lecture in Acc 661 (Spring 2007) Instructor: Christopher Brown)
Module 2 OBJECTIVE 14: Compare various security mechanisms.
Application-Centric Security
Presentation transcript:

THE ORANGE BOOK Ravi Sandhu

ORANGE BOOK CLASSES A1Verified Design B3Security Domains B2Structured Protection B1Labeled Security Protection C2Controlled Access Protection C1Discretionary Security Protection DMinimal Protection NO SECURITY HIGH SECURITY

ORANGE BOOK CRITERIA SECURITY POLICY ACCOUNTABILITY ASSURANCE DOCUMENTATION

SECURITY POLICY C1 C2 B1 B2 B3A1 Discretionary Access Control++ncnc+nc Object Reuse0+ncncnc nc Labels00++nc nc Label Integrity00+ncnc nc Exportation of Labeled Information00+ncnc nc Labeling Human-Readable Output00+ncnc nc Mandatory Access Control00++nc nc Subject Sensitivity Labels 000+nc nc Device Labels000+nc nc 0no requirement +added requirement ncno change

ACCOUNTABILITY C1 C2 B1 B2 B3A1 Identification and Authentication+++ncnc nc Audit0++++nc Trusted Path000++nc 0no requirement +added requirement ncno change

ASSURANCE C1 C2 B1 B2 B3A1 System Architecture+++++nc System Integrity+ncncncnc nc Security Testing Design Specification and Verification Covert Channel Analysis Trusted Facility Management000++nc Configuration Management000+nc + Trusted Recovery0000+nc Trusted Distribution no requirement +added requirement ncno change

DOCUMENTATION C1 C2 B1 B2 B3A1 Security Features User's Guide+ncncncnc nc Trusted Facility Manual+++++nc Test Documentation+ncnc+nc + Design Documentation+nc++++ 0no requirement +added requirement ncno change

COVERT CHANNEL ANALYSIS B1No requirement B2Covert storage channels B3Covert channels (i.e. storage and timing channels) A1Formal methods

SYSTEM ARCHITECTURE C1The TCB shall maintain a domain for its own execution that protects it from tampering C2The TCB shall isolate the resources to be protected B1The TCB shall maintain process isolation B2The TCB shall be internally structured into well-defined largely independent modules B3The TCB shall incorporate significant use of layering, abstraction and data hiding A1No change

DESIGN SPECIFICATION AND VERIFICATION C2No requirement B1Informal or formal model of the security policy B2Formal model of the security policy that is proven consistent with its axioms DTLS (descriptive top-level specification) of the TCB B3A convincing argument shall be given that the DTLS is consistent with the model A1FTLS (formal top-level specification) of the TCB A combination of formal and informal techniques shall be used to show that the FTLS is consistent with the model A convincing argument shall be given that the DTLS is consistent with the model

ORANGE BOOK CLASSES UNOFFICIAL VIEW C1, C2Simple enhancement of existing systems. No breakage of applications B1Relatively simple enhancement of existing systems. Will break some applications. B2Relatively major enhancement of existing systems. Will break many applications. B3Failed A1 A1Top down design and implementation of a new system from scratch

NCSC RAINBOW SERIES SELECTED TITLES OrangeTrusted Computer System Evaluation Criteria YellowGuidance for Applying the Orange Book RedTrusted Network Interpretation LavenderTrusted Database Interpretation

ORANGE BOOK CRITICISMS Mixes various levels of abstraction in a single document Does not address integrity of data Combines functionality and assurance in a single linear rating scale

FUNCTIONALITY VS ASSURANCE functionality is multi- dimensional assurance has a linear progression

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.